Haven free beta Data sovereignty

A secure workspace for your team. A private database for your apps.

Haven is a calm, collaborative workspace where your team works with notes, files, apps, and data - encrypted by default and installable on any device. It runs on MindooDB, an open-source, local-first sync database you can run on your own servers, in your own jurisdiction; the server only ever sees ciphertext. Real data sovereignty, without giving up real-time collaboration.

Try Haven free Listen to the Haven intro podcast Complete Haven handbook Build with MindooDB
Haven workspace screenshot showing tiles with webmail, notes, and apps - the user-facing layer of the MindooDB stack
Haven workspace - the user-facing layer of the MindooDB stack, showing tiles for webmail, notes, files, and apps.
Why Haven

Five things that set Haven apart

Secure by default
End-to-end encrypted

Client-side keys, no plaintext on the server. Apps only see what you explicitly share. Fine-grained access control governs who can create, change or delete documents - enforced cryptographically, even offline.

Collaborative
Multi-user by design

Automerge-based merges, shared tenants, and a guided onboarding flow for bringing teams in.

Cross-platform
Installable everywhere

Runs as a PWA on iOS, Android, and desktop. Add multiple instances for work, personal, and demos.

Local-first
Works without network

Full local use with built-in backup and flexible push-only, pull-only, or bidirectional sync.

Extensible
Real app platform

Build apps with the MindooDB App SDK or have an AI generate them from the published context files.

In practice

From three orgs into one private workspace

When buyer, seller, and counsel work on the same confidential deal, each side keeps its own tenant. Haven brings the shared documents, Q&A, and closing tasks into one workspace - while the server only ever sees ciphertext, and every change becomes a signed node in a tamper-evident DAG.

Diagram showing three corporate parties - Buyer, Seller, and Law Firm - whose data flows through a single arrow into a central Haven workspace tile with a gold lock icon, illustrating cross-tenant collaboration where the server only sees ciphertext
Cross-tenant deal room: Buyer, Seller, and Law Firm each keep their own tenant. The shared documents, Q&A, and tasks live in one private Haven workspace, while the server only ever sees ciphertext.
Three independent tenants - one shared, end-to-end encrypted workspace. Cross-tenant Virtual Views combine each party's data into a single deal dashboard.
MindooDB Haven DAG explorer showing a document's full change graph with branches and a merge, plus a side panel with the materialized state, change author, timestamp, and the JSON of the affected fields
DAG explorer: every change is a signed node. Branches show concurrent edits, merge nodes show how Automerge resolved them - the audit trail every regulator asks for, built in.
Tamper-evident audit trail comes for free: every signed change is a node in the DAG, with author, timestamp, and per-field diff.
New podcast episode
Zero-Trust Collaboration with MindooDB Haven

Two AI hosts · ~23 min · generated by NotebookLM

A relaxed deep-dive into how Haven turns MindooDB into a browser-based workspace: end-to-end encrypted data with keys that never leave your device, local replicas for fast offline work, CRDT-based merging with a tamper-evident change history, strictly separated multi-tenant workspaces, custom apps, and virtual views that combine data across contexts. An entertaining and accessible introduction to the platform.

Download episode
One surface for daily work

Your workspace, your way

Pages, Chicklets, and groups let you arrange databases, applications, notes, web content, and media exactly the way your team thinks. Haven becomes the calm home screen for your encrypted data.

Workspace & Apps →
  • Multiple workspace pages reorderable like tabs, plus an All page for a full overview.
  • Draggable, resizable tiles for databases, apps, notes, web, media, and Mermaid diagrams.
  • Search by database, tenant, tag, or server so nothing gets lost.
  • Database browser with CRUD, revision compare, and drag-and-drop file attachments.
  • Rich file preview for Office, images, audio, and video - MP4 even transmuxed on the fly.
MindooDB Haven welcome screen in light mode
Drag to compare Haven light and dark mode.
See it in action

A real workspace, ready for everyday work

Haven is not a concept mockup. It is a working product that already brings together navigation, workspace organization, search, database access, and local-first workflows in the browser.

Click the workspace screenshot to inspect a much taller Haven page with notes, media, running apps, mind maps, Kanban boards, and Mermaid tiles in one real workspace.

Real workspace

Full mixed-tile Haven workspace

Scroll inside the frame or jump directly to a region:

Long Haven workspace screenshot showing notes, media, embedded web content, running apps, a mind map, a Kanban board, and Mermaid diagrams in one large workspace page
Build on Haven

A real app platform, not just a launcher

Applications can run embedded in the Haven grid or in their own tab, access selected databases and views, and ship as either externally hosted web apps or Haven-hosted bundles served offline by the service worker.

Apps & SDK →
  • MindooDB App SDK with launch context, live events, documents, attachments, and Virtual Views.
  • Capability-based security - Haven decides what every app can see and do.
  • Online or offline - hosted bundles run even when the network is gone.
  • Six demo apps - two first-party productivity apps you install from Haven (Mindoo Vega, for mind mapping and Kanban task tracking with full-text search, and Mindoo TodoManager, for team todos), two open-source collaborative editors that demonstrate the SDK's granular patch APIs (Mindoo TeamEdit, a collaborative markdown editor with character-level merging, and Mindoo TeamGrid, a collaborative spreadsheet with around 280 Excel-compatible formulas, charts, XLSX round-trip, and Virtual View Sheets that pull data from cross-tenant Haven views into ordinary worksheets), a beautiful responsive weather tile (Mindoo Weather) that adapts to the tile size and showcases the SDK's UX surface, and the open-source MindooDB App SDK example to fork as the starting point for your own app.
  • Build with AI - feed /llms-full.txt and the example repo to a coding agent and let it generate apps.
Mindoo Vega Mind map and Kanban in one embedded app
Mindoo Vega embedded in Haven showing a mind map with nested projects, sprints, documents, and tasks
Mindoo Vega embedded in Haven showing the related Kanban board view for the selected project
TodoManager Light and dark mode team task boards
Mindoo TodoManager embedded in Haven showing a light theme task board grouped by importance and due date
Mindoo TodoManager embedded in Haven showing the same task board in dark mode
Mindoo TeamEdit Collaborative markdown editor with character-level merging
Mindoo TeamEdit embedded in Haven, showing a markdown document being edited on the left and the rendered live preview pane on the right
Mindoo TeamEdit showing a Mermaid timeline diagram authored as a fenced code block and rendered live in the preview pane

MindooDB Apps

Mindoo Vega desktop mind map showing nested projects, sprints, documents, and tasks
Mindoo VegaDesktop
Plan projects as a mind map

Mindoo Vega turns encrypted project data into a spatial mind map with nested projects, sprints, documents, and tasks.

115
Private by design

Encrypted from the first keystroke

Haven inherits MindooDB's trust model. Data is encrypted on the client before it ever leaves the device, apps run in sandboxed iframes with granular permissions, and the DAG explorer makes collaboration auditable.

Security & Privacy →
Haven Configure application dialog showing runtime mode, hosting mode, launch parameters, and per-database capabilities (read, create, update, delete, history, attachments, views) with a tooltip describing the attachments permission
Configure application: per-database capability grid (read, create, update, delete, history, attachments, views) plus launch parameters and database mappings.
Haven Sync page listing tenant databases with direction indicators and a Sync menu open on the Docs only, no attachments option
Sync page: per-database push-only, pull-only, or bidirectional sync, with the option to transfer documents only or documents plus attachments.
  • End-to-end encryption with client-held keys and no plaintext on infrastructure.
  • Sandboxed apps on separate origins; hosted bundles get an even stricter opaque-origin sandbox.
  • DAG explorer turns Automerge merges into a navigable, auditable history.
  • Flexible sync - push-only, pull-only, or bidirectional per setup, and per database you can choose whether to transfer documents plus attachments or documents only for leaner, faster syncs.
  • Built-in backup of in-browser data, plus Virtual Views as a secure analytical layer.
Where your data lives

Local, demo, or your own server

Haven Community works in three topologies. Choose the one that matches your workflow - you can move between them without changing clients.

Deployment options →
Local only
Fully in your browser

Create tenants and databases entirely offline. No server, no sync - ideal for personal use, drafts, and offline demos.

Mindoo demo server
Try team features

Push a local tenant to the hosted demo server and invite real collaborators. Demo data is wiped periodically - it is for evaluation, not production.

Self-hosted
Your own server

Point Haven at a MindooDB server you run. See README-server.md for setup.

Two ways to run Haven

Community or Enterprise

Haven Community
Free beta

The Haven PWA at haven.mindoodb.com. Free to use today, full local use, optional demo server, and self-hosting against your own MindooDB server.

Explore Community →
Haven Enterprise
Commercial

Custom branding, managed UI and workspaces, in-house app store, workspace roaming, automatic backup, inline attachment editing, and more - from Mindoo GmbH.

Explore Enterprise →
Latest from the blog

MindooDB and Haven updates

Product updates and implementation notes from the MindooDB ecosystem.

Read all posts →

25.05.2026

Mindoo TeamEdit update - collaborative Word/.docx editing on MindooDB Haven

Mindoo TeamEdit gains a Word/.docx editing mode alongside the existing collaborative Markdown editor. Two people can now open the same .docx file in two TeamEdit instances, type into the same paragraph, drop in images, reshape a table, accept tracked changes, leave threaded comments - and watch the merged result appear on both screens through MindooDB's Automerge sync, with only the actually changed spans on the wire. TeamEdit also handles multiple documents open at once - a Window menu lists every open Markdown brief and Word memo and lets you flip between them. Under the hood the document is mapped to Automerge's rich text format (formatting spans plus block markers) on top of the EigenPal docx-editor we picked after evaluating SyncFusion and Apryse - chosen for its Apache 2.0 license, OOXML round-trip fidelity, and ProseMirror foundation that lets us plug in MindooDB's collaborative storage cleanly.

21.05.2026

Mindoo TeamGrid update - virtual view sheets, 280 Excel formulas, charts and templates in MindooDB Haven

Four days after the initial release we are shipping a big round of updates to Mindoo TeamGrid, the open source collaborative spreadsheet for MindooDB Haven. The headline feature is Virtual View Sheets - pick any virtual view configured in Haven (including views that combine your private data with work data and with data from a partner company's tenant) and drop it into your workbook as a normal worksheet that Excel formulas, charts and XLSX export can read. Alongside it: a much larger formula engine with 280 Excel-compatible functions courtesy of fast-formula-parser, the four chart types Excel users actually use day to day (Column, Bar, Line, Pie), spreadsheet templates with File / New from template..., hidden rows and columns that survive an Excel round trip, automatic cell type detection from typed content, and a selection and keyboard model much closer to what people expect from Excel. And all of it still merges across two laptops, two devices, and four tabs the same way it did on day one.

19.05.2026

How MindooDB stores attachments - encrypted chunks, append-only history, and on-the-fly MP4 streaming in Haven

Attachments in MindooDB are not stored as one blob hanging off a document. Each file is a chain of small encrypted chunks (256 KB by default, encrypted with the document's own key), and each chunk points back at its predecessor. The document only references the *last* chunk - which turns growing a file into appending one chunk, makes earlier document revisions automatically see only the bytes that existed then, and reduces moving or duplicating a large attachment between documents to copying a tiny JSON entry. Chunks are deduplicated by a hash of their encrypted bytes, so the same file inside one MindooDB database occupies storage once and syncs once. On top of all that, Haven streams long media attachments straight from those decrypted chunks - and for older MP4 files that browsers refuse to stream, Haven rebuilds them on the fly into a streamable shape with a lazy-loaded mp4box.js pipeline.

Try the free beta Pricing & support MindooDB Security Model